#FB #security interview coming up. What kind of questions should I expect? What level of leetcode is expected? The position is geared more towards privacy and appsec. Any insight will be much appreciated especially from Privacy and AppSec folks. ps: Already reached out to the recruiter with set of questions. It would be helpful to understand more from hiring team perspective. Thanks!
Lc medium + security
Do they expect us to code in first tech round?
Ofc
Do you require clearance ?
No, I don’t think so. Recruiter didn’t mention anything about clearance. I’m curious why did you ask?
So no chance without leetcode? Despite being pretty good in security? Humbly speaking Ofcourse..🤗
Tends to zero chances without coding unless its non engineering (security engineers are expected to code)
they don't have appsec roles which do just reviews and pentests etc? do all security folks have to write code regularly?
How did it go?
Mostly security at FB is just about writing code developing tools. I haven't seen much people looking at pentesting or sldc security or threat modelling
process is stupid, applying for appsec role should require coding related with bruteforcing, parsing api responses and stuff like that, not playing with effing arrays. We have docs and stackoverflow for that
Most security interviews I've done have been scenario based. How would you protect this system? How would you attack this authentication mechanism? Scale your solution afterwards. Know web fundamentals, OWASP top 10 etc.